What is CVE-2025-48941?

CVE-2025-48941 is a medium-severity vulnerability in Mybb, classified under CWE-1230. CVSS score: 5.3/10. Published 2025-06-02.

How severe is CVE-2025-48941?

Medium severity. CVSS v3 base score is 5.3 out of 10.

Vulnerability in Mybb

CVE-2025-48941

MyBB is free and open source forum software. Prior to version 1.8.39, the search component does not validate permissions correctly, which allows attackers to determine the existence of hidden (draft, unapproved, or soft-deleted) threads co…

EPSS: 0.003 (51.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N.

Affected products

Mybb — versions < 1.8.39

Weakness classification (CWE)

CWE-1230

References

https://github.com/mybb/mybb/security/advisories/GHSA-f847-57xc-ffwr (x_refsource_CONFIRM)
https://github.com/mybb/mybb/commit/b8cc332a27e145c33effaccec90e23c103ae5193 (x_refsource_MISC)
https://mybb.com/versions/1.8.39 (x_refsource_MISC)

Frequently asked questions

What is CVE-2025-48941?: CVE-2025-48941 is a medium-severity vulnerability in Mybb, classified under CWE-1230. CVSS score: 5.3/10. Published 2025-06-02.
How severe is CVE-2025-48941?: Medium severity. CVSS v3 base score is 5.3 out of 10.